diff --git a/README.md b/README.md
index e9e55b5..29a67c8 100644
--- a/README.md
+++ b/README.md
@@ -56,6 +56,14 @@ services:
     #   SCANNERS: "vuln,misconfig,secret"  # Scanners to be used
     #   IGNORE_UNFIXED: "false"  # Whether to ignore unfixed vulnerabilities
     #   LOW_PRIORITY: "true"  # Run scans with low CPU priority
+    read_only: true
+    tmpfs:
+      - /tmp
+    deploy:
+      resources:
+        limits:
+          cpus: '0.50' # Limit to 50% of a CPU
+          memory: 512M  # Limit to 512 megabytes
 ```
 
 Schedule regular scans using crontab: